All posts

Scammers exploiting GetShared for phishing attacks

Scammers are exploiting GetShared to bypass email security.

What happens to your computer when you download pirated software

What happens if you download a cracked program?

Spoiler: nothing good. Along with pirated software, you’ll probably pick up a miner, stealer, or backdoor.

NFC carders hide behind Apple Pay and Google Wallet

Cybercriminals are inventing new ways to swipe money from payment cards by using credentials phished online or over the phone. Sometimes, just holding your card to your phone is enough to leave you penniless.

Polyglot technique for disguising malware

When files are not what they seem

Attackers use the polyglot technique to disguise malware. We explain what it is and how to protect your company against attacks.

Trojan.Arcanum — a new trojan targeting tarot experts, esotericists, and magicians

Tarot and cyberthreats: a new Trojan for fans of the supernatural

New malware targets magic enthusiasts — sending stolen data to an “astral cloud server”.

A ransomware attack through an IP camera

Fending off ransomware attacks that exploit corporate IoT devices.

Protecting Android, Windows, and Linux devices against being tracked via the Find My network

How to track anyone via the Find My network

Apple’s Find My network can be exploited to remotely track other vendors’ Android, Windows, and Linux devices.

AI technologies in Kaspersky SIEM

How and why we deploy artificial intelligence in our SIEM system.

How to hack an Eight Sleep smart mattress “Pod”

Three ways to hack… a mattress!

A security researcher has investigated his own smart mattress cover, discovering several ways to hack it — including through a backdoor preinstalled by the developer.

CVE-2025-2783 in Operation ForumTroll APT attack

Operation ForumTroll: APT attack via zero-day vulnerability

Our technologies have helped to detect the zero-day vulnerability CVE-2025-2783 in Google Chrome, which was used in a sophisticated APT attack.

The best private browser in 2025: where to flee from Chrome, Edge, and Firefox

Privacy under attack: nasty surprises in Chrome, Edge, and Firefox

How to counter new privacy invasions by browser developers

Fog ransomware publishes victim’s IP-addresses

Cybercriminals behind the Fog ransomware publish leaked data along with the IP addresses of attacked computers.

New Arcane stealer spreads disguised as Minecraft cheats

Arcane stealer instead of Minecraft cheats

If you’ve ever downloaded game cheats from a YouTuber’s “link in the description”, your computer might be infected with a stealer.

Attack on DevOps: secrets leaked via malicious GitHub Action

How to respond to a compromised GitHub changed-files Action incident.

Are the Android SafetyCore and Android System Key Verifier apps safe?

Google forcing Android System SafetyCore on users to scan for nudes

We dive into the mechanics of the controversial nude-scanning app that has mysteriously materialized on a billion phones.

Update your VMware ESXi products now to patch these three critical vulnerabilities from 2025

Three VMware vulnerabilities: key risks and urgent patches

Reasons for updating your ESXi infrastructure ASAP, and enterprise threats that VM escape poses.

Main vulnerabilities from Microsoft's March Patch Tuesday

Six Microsoft vulnerabilities being actively exploited

Microsoft’s March Patch Tuesday fixes several vulnerabilities that have already been used in the wild. Details are not clear at the moment, but it’s worth installing the patches ASAP.

How to store cryptocurrency after the Bybit hack

Lessons from the Bybit hack: how to store crypto safely

Takeaways for regular crypto holders from the biggest crypto heist in history.

Technology to check QR codes for phishing

Checking QR codes in emails

We’ve added technology that checks QR codes in emails for phishing links.

Attackers distributing Trojans disguised as DeepSeek or Grok clients for Windows

Trojans masquerading as DeepSeek and Grok clients

We found several groups of sites mimicking official websites of the DeepSeek and Grok chatbots. Fake sites distribute malware under the guise of non-existent chatbot clients for Windows.

Cybercriminals are distributing a miner disguised as a restriction-bypassing tool

Miner inconvenience: how cybercriminals blackmail YouTubers into promoting malware

Cybercriminals are blackmailing YouTube bloggers into posting malware links in their video descriptions.

Privacy & Kids

TARGETED SECURITY SOLUTIONS

Industries